Information Security: A Conceptual Architecture Approach from Oracle

Information Security is a strategic approach that should be based on a solid, holistic framework encompassing all of an organization's Information Security requirements, not just those of individual projects. The framework should be based on a reference architecture that takes into account key security principles such as 'Defence in Depth' and 'Least Privileges'. By taking this approach to Information Security, organizations can ensure that the components of their Information security architecture address all business critical Information and are driven by the requirements of the business